VYPR

Maven package

org.apache.cxf.fediz/fediz-oidc

pkg:maven/org.apache.cxf.fediz/fediz-oidc

Vulnerabilities (1)

  • CVE-2017-7662HigMay 16, 2017
    affected < 1.3.2fixed 1.3.2

    Apache CXF Fediz ships with an OpenId Connect (OIDC) service which has a Client Registration Service, which is a simple web application that allows clients to be created, deleted, etc. A CSRF (Cross Style Request Forgery) style vulnerability has been found in this web application